Thailand PDPA Compliance

Accelerate time to Thailand Personal Data Protection Act (PDPA) compliance

Enforce a culture of accountability to the rights of data subjects and operationalize the PDPA’s data privacy requirements.

Request demo

A unified platform for PDPA Thailand compliance and governance

OneTrust supports your compliance journey with relevant regulatory research, automation of data subject rights request fulfillment, and by streamlining data collection and incident response.

Stay up to date on the latest amendments with a centralized repository of full PDPA text, summaries, and regulatory guidance. Leverage maturity and benchmarking tools to assess your program’s effectiveness and identify gaps in data security or data protection policies.

Uphold data subject rights by choosing from a library of customizable cookie banners that reflect PDPA-specific messaging and utilize geolocation to display the appropriate consent models depending on the website visitor’s location. Scan your website and mobile apps for cookies and document verifiable consent across data collection points.

CONSENT & PREFERENCES

May 06, 2025

Learn how to build a privacy-centric marketing strategy with first-party data. Join experts from InfoTrust and OneTrust to drive growth while respecting consumer privacy.

FAQs

We’re here to support you in achieving and maintaining Thailand PDPA compliance. In the meantime, explore answers to frequently asked questions.

Thailand Personal Data Protection Act (PDPA) regulates data collection and data processing activities. It is based on the EU’s General Data Protection Regulation (GDPR) and shares similar provisions related to legal bases for personal data collection and processing, data subject rights, and scope. It was passed in 2019 and went into effect on May 27, 2021.

The PDPA requires companies to respect the rights of data subjects and fulfill rights requests. These rights are like those found in the GDPR and include the right to be informed, access to their information, the right to opt-out, and data portability. Companies must limit their data collection to their original lawful purpose, ensure the data is accurate and complete, obtain verifiable consent with the data subject before cross-border data transfer, and notify individuals of data breaches within 72 hours if their personal data was exposed. They must also employ a representative in Thailand if they monitor individuals in the country.

OneTrust streamlines your compliance with automated data discovery and record keeping, pre-built workflows and templates, and privacy impact assessments (PIAs). You can even leverage a knowledge base built by privacy and legal experts to stay updated with the latest regulatory changes and accelerate your trust transformation journey.

Ready to get started?

Request a free demo today to see how OneTrust can help you unlock the power of responsible data use.

Request demo

Contact sales

Thailand PDPA Compliance

Accelerate time to Thailand Personal Data Protection Act (PDPA) compliance

A unified platform for PDPA Thailand compliance and governance

Crafting durable first-party data strategies: A roadmap for successful privacy-centric marketing

FAQs

Ready to get started?

Request a free demo today to see how OneTrust can help you unlock the power of responsible data use.

Top Searches

Resources

Platform

Company

Latest News

Contact Us

Privacy Matters

Our privacy center makes it easy to see how
we collect and use your information.

Your privacy

Our policies

Your rights

Thailand PDPA Compliance

Accelerate time to Thailand Personal Data Protection Act (PDPA) compliance

A unified platform for PDPA Thailand compliance and governance

Access PDPA research and benchmark your program readiness

Uphold data subject rights and track verifiable consent

Secure communication and processing to fulfill data subject requests

Optimize data collection and empower your DPO with data mapping

Prepare for incidents and streamline breach response

Crafting durable first-party data strategies: A roadmap for successful privacy-centric marketing

FAQs

What is Thailand’s PDPA?

Who does the PDPA apply to?

What are the PDPA obligations?

How can OneTrust help me become Thailand PDPA compliant?

Ready to get started?

Request a free demo today to see how OneTrust can help you unlock the power of responsible data use.

Top Searches

Resources

Platform

Company

Latest News

Contact Us

Privacy Matters

Our privacy center makes it easy to see how we collect and use your information.

Your privacy

Our policies

Your rights

Our privacy center makes it easy to see how
we collect and use your information.